Back to All Attacks
Attack Details
Attack Date:
Jun 27, 2022
Vendor Impersonation Payment Inquiry BEC Attack
Initial Email Content
Subject
Re: [Vendor Company Name] - Open Invoice
Body
Hi [Recipient First Name],
We are currently on an audit process and as a result of this, we are having delays with accounts reconciliations on all aging receivables.
Could you advise if we can expect payments this week on due invoices? Would appreciate you look into this and feed me back?
I’m happy to answer any questions you might have.
Have a great day!
Thank you,
[Vendor Employee Name]
[Vendor Employee Title]
Attack Screenshots
No items found.
No items found.
Malicious Artifacts
Additional Indicators of Compromise
Type
Description
No items found.
Attack Description
This text-based BEC attack impersonates a vendor/supplier using a look-alike domain and a payment inquiry theme to request a fraudulent payment.
Analysis Overview
Tactic
Look-alike Domain
Goal
Payment Fraud
Impersonated Party
External Party - Vendor/Supplier
Vector
Text-based
Theme
Payment Inquiry
Language